Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-39296

A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 build 20231110 and later QuTS hero h5.1.3.2578 build 20231110 and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2023-39296
  • Qnap » Qts » Version: 5.1.0.2348
    cpe:2.3:o:qnap:qts:5.1.0.2348
  • Qnap » Qts » Version: 5.1.0.2399
    cpe:2.3:o:qnap:qts:5.1.0.2399
  • Qnap » Qts » Version: 5.1.0.2418
    cpe:2.3:o:qnap:qts:5.1.0.2418
  • Qnap » Qts » Version: 5.1.0.2444
    cpe:2.3:o:qnap:qts:5.1.0.2444
  • Qnap » Qts » Version: 5.1.0.2466
    cpe:2.3:o:qnap:qts:5.1.0.2466
  • Qnap » Qts » Version: 5.1.1.2491
    cpe:2.3:o:qnap:qts:5.1.1.2491
  • Qnap » Qts » Version: 5.1.2.2533
    cpe:2.3:o:qnap:qts:5.1.2.2533
  • Qnap » Quts Hero » Version: h5.1.0.2409
    cpe:2.3:o:qnap:quts_hero:h5.1.0.2409
  • Qnap » Quts Hero » Version: h5.1.0.2424
    cpe:2.3:o:qnap:quts_hero:h5.1.0.2424
  • Qnap » Quts Hero » Version: h5.1.0.2453
    cpe:2.3:o:qnap:quts_hero:h5.1.0.2453
  • Qnap » Quts Hero » Version: h5.1.0.2466
    cpe:2.3:o:qnap:quts_hero:h5.1.0.2466
  • Qnap » Quts Hero » Version: h5.1.1.2488
    cpe:2.3:o:qnap:quts_hero:h5.1.1.2488
  • Qnap » Quts Hero » Version: h5.1.2.2534
    cpe:2.3:o:qnap:quts_hero:h5.1.2.2534


Products
Pricing
Contact Us

Shodan ® - All rights reserved